<?php

//	Author: 	Christos Polydorou
//	Email:		std04237@di.uoa.gr
//	Purpose: 	Register authenticate user

require_once ("../DB/connection.php");
require_once ("../DB/defines.php");
require_once ("../Frameworks/Objects/user.php");

function DB_userLogin($username, $password)
{

    global $conn;

    // The name of the stored procedure
    $sp_name = "usp_userLogin";
    // The return variable
    $retval;

    // Create a new statement
    $stmt = mssql_init($sp_name, $conn);

    // Bind values
    mssql_bind($stmt, "RETVAL", $retval, SQLINT4, true, false, 1);
    mssql_bind($stmt, '@username', $username, SQLVARCHAR, false, false, 50);
    mssql_bind($stmt, '@password', $password, SQLVARCHAR, false, false, 50);

    // Execute the statement
    $status = mssql_execute($stmt);
    if (!$status)
    {
        return DB_ERROR_GENERAL;
    } else
        switch ($retval)
        {
            case "0":
                $row = mssql_fetch_row($status);
                return $row[0];
            case "-1":
                return DB_ERROR_USERDISABLED;
            case "-2":
                return DB_ERROR_WRONGPASSWORD;
            case "-3":
                return DB_ERROR_USERLOCKED;
        }
}

?>